Security Engineer
Lead the design and implementation of enterprise data protection across Microsoft 365, endpoints, and cloud platforms, focusing on encryption, IAM, DLP, and compliance to safeguard sensitive information.
You desire impactful work.
You’re RGA ready
RGA is a purpose-driven organization working to solve today’s challenges through innovation and collaboration. A Fortune 200 Company and listed among its World’s Most Admired Companies , we’re the only global reinsurance company to focus primarily on life- and health-related solutions. Join our multinational team of intelligent, motivated, and collaborative people, and help us make financial protection accessible to all.
The Staff Data Security Engineer will drive the design and implementation of enterprise data protection capabilities across Microsoft 365, endpoints, and cloud platforms.
This position will play a key role in protecting sensitive data across its full lifecycle, discovering, classifying, and securing data while reducing enterprise risk. You will work across multiple technologies and teams to ensure data security controls are scalable, actionable, and aligned to business and regulatory requirements. It also will work cross-functionally with IT, Legal, Compliance, and business stakeholders to ensure sensitive data is identified, classified, and protected across all endpoints, cloud workloads, and collaboration platforms.
Principle Duties
Design, deploy, and tune DLP policies across Microsoft Purview DLP, covering Exchange Online, SharePoint, Teams, OneDrive, and endpoint devices
Configure and manage labeling policies, trainable classifiers, and exact data match (EDM) for sensitive data types
Integrate DLP capabilities with the Defender suite. Configure and manage Microsoft Defender for Endpoint and its Endpoint DLP component to monitor and control data on client devices. Leverage Microsoft Defender for Cloud Apps (MDCAS) for cloud-based DLP and real-time monitoring of SaaS applications.
Configure data connectors and analytic rules in Sentinel for DLP alerts and email security events.
Monitor DLP incidents, conduct root-cause analysis, and drive policy refinement to reduce false positives while maintaining coverage
Extend DLP coverage beyond Microsoft 365 to third-party SaaS platforms, on-premises systems, and network egress points to reduce unauthorized data access and exfiltration
Collaborate with stakeholders to develop data handling standards and acceptable use policies and establish consistent policy frameworks, enforcement models, and automation for data protection
Create and maintain technical documentation, runbooks, and Standard Operating Procedures (SOPs) for the Data Security program.
Build automation and scalable processes to reduce manual effort Data Security Posture Management (DSPM)
Deploy and manage DSPM tooling to provide continuous visibility into sensitive data discovery, risk exposure, and access patterns
Leverage Varonis for data access governance, entitlement reviews, and detection of abnormal data access behaviors acros
Posted June 26, 2026